Hi! I’m setting up a private OPAM repository on an authenticated GitLab instance. I’ve set up the Git repository, added it to my local switches, so far so good. I’m planning on having Gitlab CI build the tarballs, so everything should run smoothly. However, every time OPAM needs to interact with t…

I’m not sure how opam downloads files, but if it shells out to wget or curl it should be able to read credentials stored in ~/.netrc.

I solved it by creating a custom retrieval command that uses a token to retrieve tarballs from GitHub, which is how the OPAM repository cache is built. The repo that people add to their development machine is on an HTTP server accessible only within our network but without authentication.

Hmm, so no built-in solution from OPAM. Well, that’s a shame. :frowning: I’ll see if I can do something similar, thanks for the feedback!

We did use .netrc at a certain stage and it was working fine. I cannot remember if it was opam or opam2 though

This looks very promising. It seems to work for the repository updates, I still have to give it a try for package installs. Besides, this is working great with Gitlab, since it supports user private tokens for authentication. That way, I don’t have to write down my actual password in ~/.netrc and I…

Still having trouble with the tarballs. Gitlab exposes an API endpoint to download archives, but authenticating against the API require custom headers… I’ll keep trying, though.

Maybe this script will help you a little. These are the steps necessary for Github to get private tarballs (used as OCAMLFETCH command), maybe adapting it for Gitlab could be feasible.

(used as OCAMLFETCH command) I guess you meant to say OPAMFETCH. That sounds totally doable. The script could look at the host of the URL, and if it matches my Gitlab instance, call a custom curl command where my token could be read from the environment (or a configuration file). I’ll let you k…

Storing credentials to a private OPAM repository

Ecosystem

Richard-Degenne October 20, 2023, 5:13pm 10

Welp, 4 years later, I decided to give that whole private OPAM repository thing another shot, and I ended up with something I’m quite proud of, with a private Opam repository, and private packages uploaded to GitLab’s package registries!

Topic		Replies	Views
Mirroring OPAM repository Ecosystem opam	2	876	October 2, 2018
How can I install OPAM package from private Github repo? Learning opam	6	1046	March 24, 2023
How to setup local OPAM mirror Learning	13	3630	October 14, 2020
Best practices around using external libraries on opam? Ecosystem opam	6	1497	June 11, 2020
Publishing to Opam Community	14	1525	September 8, 2020

Storing credentials to a private OPAM repository

Related topics